UAMS ADMINISTRATIVE GUIDE
UAMS ADMINISTRATIVE GUIDE
NUMBER: 7.1.13
DATE: 1/15/01
REVISION: 8/24/04
| SECTION: | INFORMATION TECHNOLOGY |
| AREA: | GENERAL |
| SUBJECT: | WIRELESS NETWORKING |
I. INTRODUCTION Access Points (APs): Electronic hardware that serves as a common connection
point for devices in a wireless network. An access point acts as a network hub
that is used to connect segments of a Local Area Network (LAN), using antennas
to transmit and receive instead of ports for access by multiple users of the
wireless network. Access points are shared bandwidth devices and can be
connected to the wired network, allowing access to the UAMS network backbone. D. Violations of Law and Policy
This Policy governs wireless networks within the University of Arkansas for
Medical Sciences (UAMS). Wireless networks allow users to access computing
facilities and information resources from portable and mobile devices. They also
facilitate extending network connectivity to locations that are not feasible to
hard wire (temporary facilities, cost prohibitive locations, etc.)
II. GENERAL PROVISIONS
A. Purpose
The purpose of this Policy is to:
• Ensure that UAMS wireless resources are used for purposes appropriate to the
UAMS mission and goals;
• Prevent disruptions to and misuse of UAMS wireless resources;
• Assign responsibility for the administration of the wireless radio frequency
spectrum and the deployment of wireless resources;
• Ensure that the UAMS community is aware that use of UAMS wireless resources is
subject to state and federal laws and UAMS policies; and
• Ensure that wireless resources are used in compliance with those laws and UAMS
policies.
B. Scope
This Policy applies to:
• All wireless network resources owned or managed by UAMS;
• All wireless network resources provided by UAMS through contracts and other
agreements with UAMS;
• All wireless network resources located within UAMS owned or leased facilities
and used to access the UAMS wired network resources; and
• All users and uses of any wireless and wired network resources at UAMS.
C. Definitions
Compelling Circumstances: Circumstances in which time is of the essence or
failure to act might result in personal injury, property loss or damage, adverse
effects on UAMS resources or services, loss of evidence of one or more
violations of law or of UAMS policies or liability to UAMS or to members of the
UAMS community.
Coverage: The geographical area where a baseline level of wireless connection
service quality is attainable.
Encryption: The process of transforming data to an unintelligible form in such a
way that the original data either cannot be obtained (one-way encryption) or
cannot be obtained without using the inverse decryption process (two-way
encryption).
Interference: The degradation of a wireless communication signal caused by
electromagnetic radiation from another source. Interference can slow down or
eliminate a wireless transmission depending on the strength of the interfering
signal.
Password: A string of characters which serves as authentication of an
individual’s identity, which may be used to grant, or deny, access to private or
shared data.
Rogue Access Point: A wireless network access point that is operating outside
normal or desirable UAMS enterprise controls or a computer configured to run in
ad hoc mode.
Wireless Hardware/Software: The electronic equipment and software that is
installed in a desktop, laptop, handheld, portable, or other computing device to
provide an interface to a wireless network.
Wireless Network: A local area network technology that uses radio frequency
spectrum to connect computing devices to UAMS wired networks and the Internet.
Wireless Resources: Wireless access points, antennas, cabling, power, and
network hardware associated with the deployment of a wireless network and the
devices that connect wirelessly to it.
UAMS considers any violation of this Policy and/or law to be a serious offense
and reserves the right to copy and examine any files or information resident on
UAMS wireless resources to ensure compliance. Violations of this policy should
be reported to the appropriate UAMS authority.
Sanctions of Law. Both federal and state laws prohibit theft or abuse of
wireless resources. Abuses include (but are not limited to) unauthorized entry,
use, transfer, tampering with the communications of others, and interference
with the work of others and with the operation of wireless resources. Any form
of harassing, defamatory, offensive, illegal, discriminatory, obscene, or
pornographic communication, at any time, to any person is also prohibited by
law. Violations of the law may result in criminal penalties.
Disciplinary Actions. Violators of this Policy and/or law may be subject to
disciplinary action up to and including dismissal or expulsion pursuant to
applicable UAMS policies.
E. No expectation of Privacy
There is no expectation of privacy in the use of wireless resources at UAMS.
UAMS reserves the right to inspect, monitor, and disclose all wireless resources
including files, data, programs and electronic communications records without
the consent of the holder of such records.
III. SUITABILITY
Wireless networking is not a strategic replacement for a wired network. The
capabilities and security provided through wired network technologies will
likely continue to outpace improvements in capabilities provided by wireless
network technology. A wireless network must be an augmentation of a wired
network.
The FCC does not license use of the frequencies used by wireless devices and
therefore other devices that use the same frequencies may disrupt wireless
communications. These devices include but are not limited to cordless phones,
microwave ovens and personal
network devices. Areas with high interference from such devices may not be
suitable for wireless networks.
IV. ADMINISTRATION
Wireless Networks will:
• Be centrally administered as a component of the LAN.
• Be regularly scanned for rogue APs and have those removed immediately.
• Adhere to health, building, and fire codes.
• Comply with all federal and state regulations for wireless communications.
• Use supported radio frequency bands.
Access Points must:
• Be adequately secured from theft, vandalism, and unauthorized data port
access.
• Have upgradeable firmware.
• Be managed over a hard-wired administration port and never over the wireless
network.
• Have wireless access to the administration port disabled at all times.
• Have passwords changed initially and at regular intervals thereafter.
• Require authentication before granting access.
• Be configured with encryption enabled; where encryption keys must be changed
at regular intervals and must not be posted publicly.
V. ACCESS RESTRICTIONS
Use of the UAMS wireless network may be wholly or partially restricted or
rescinded by UAMS without prior notice and without the consent of the user under
conditions such as:
• when required by and consistent with law;
• when there is reason to believe that violations of law or UAMS policies have
taken or may take place; or
• when there are compelling circumstances.
VI. DISCLAIMER
UAMS disclaims any responsibility for and does not warranty information and
materials residing on non-UAMS systems or available over publicly accessible
networks. Such materials do not necessarily reflect the attitudes, opinions or
values of UAMS, its faculty, staff or students.
VII. NOTICE TO USERS
As laws, technology and standards change from time to time, this Policy may,
after appropriate review, be revised as necessary to reflect such changes. It is
the responsibility of users to ensure that they have reference to the most
current version of UAMS Policies.